Vulnerabilities > CVE-2004-0945 - Denial-Of-Service vulnerability in Mitel 3300 Integrated Communication Platform

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

mitel

NVD

Published: 2005-02-28

Updated: 2008-09-05

Summary

The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum.

Vulnerable Configurations

Part	Description	Count
Hardware	Mitel Mitel Mitel 3300 Integrated Communication Platform *	1

References

http://www.corsaire.com/advisories/c040817-003.txt
http://www.mitel.com/DocController?documentId=14223
http://www.niscc.gov.uk/niscc/docs/re-20050228-00178.pdf?lang=en